Homograph phishing is one of the world’s most sophisticated and successful forms of domain phishing. It involves the use of Internationalized Domain Names (IDNs) to create domain registrations that look confusingly similar to an existing “regular” or non-IDN domain registration. Unlike traditional typosquatting, homograph attacks deceive unsuspecting victims by presenting visually indistinguishable links to a customer either through web content or a spoofed email address.
If you are interested in learning more about homographs, Lexsynergy’s Director, Daniel Greenberg, was interviewed by IPPro in 2018 about this growing cybersecurity threat. You can read the full interview HERE.
Donuts Registry, which manages over 240 generic TLDs, has announced a new anti-phishing technology called TrueName Phishing Protection.
TrueName Phishing Protection is a fully automated brand and identity protection service designed to prevent bad actors from attempting to copy or maliciously impersonate your online identity. TrueName accomplishes this by preventing the registration of all known confusingly similar “homographs” of a domain name at the point of registration.
Lexsynergy owns the domain lexsynergy.limited, and Donuts is the registry for the .limited domain extension. This domain is now protected with TrueName, meaning nobody can register a homograph that looks similar to lexsynergy.limited. Here are a few examples of domains strings that are now blocked from registration:
Homograph Domain
ǀexƽɣnergɣ.limited
lexƽɣnergɣ.limited
lexƽɣnerᶃɣ.limited
lexƽɣnerɡɣ.limited
lexƽɣnergᶌ.limited
lexƽʏnerƍʏ.limited
lexꜱᶌnerƍỿ.limited
lexsynerɡᶌ.limited
lexsʏnerɡy.limited
lexꜱynerɡỿ.limited
As you can see, unless you are looking closely, these domains could easily be confused for our domain lexsynergy.limited.
If you have any questions about TrueName Phishing Protection, please email your account manager or our support team at [email protected].